PDA

Archiv verlassen und diese Seite im Standarddesign anzeigen : Adobe Flash Player ActionScript Launch Command Execution



newsbot
20.04.2012, 08:20
This Metasploit module exploits a vulnerability in Adobe Flash Player for Linux, version 10.0.12.36 and 9.0.151.0 and prior. An input validation vulnerability allows command execution when the browser loads a SWF file which contains shell metacharacters in the arguments to the ActionScript launch method. The victim must have Adobe AIR installed for the exploit to work. This Metasploit module was tested against version 10.0.12.36 (10r12_36).

Weiterlesen... (http://packetstormsecurity.org/files/112009/adobe_flashplayer_aslaunch.rb.txt)